Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com ), so withholding your domain name here does not increase secrecy, but …

I wasn't able to discern a specific question you raised or problem you reported, (I'm sure you know what you wanted to say but it didn't end up coming across to me) however, I think what's happening here is as follows: The Apache httpd doesn't do a great job implementing OCSP Stapling. What you wou…

Really, no question was asked in this thread. Actually I should have tagged it on to the end of: [image] OCSP ERROR on SSLLabs Help M… but didn't think about it in time. @tialaramex I do appreciate your response, and many others on this form share your views about Ap…

I'm not sure that I trust SSL Labs indication here given their track record. I do trust your own findings though, Rip.

OK thanks. I am watching. This is the first time MY SERVER has hosed on an OCSP request. @tialaramex mentions that apache has issues with ocsp requests, but this is the first time I have seen this particular issue after 30 years. (oops dating myself... someone has to.) Now Rudy ( @rg305 ) has alway…

[image] Rip: So if it is a matter of "switching servers" it has to be warranted. Not just a suspected issue. See: [image] OCSP Request failed with following message Help Y…

Wow so I appreciate the link. Are you using caddy? What is your experience with whatever you use? You are a smart person and I can learn from you. No SH#@

[image] Rip: Are you using caddy? I use Caddy for some things, Apache for others. If I'm writing the configuration myself, I'm probably using Caddy--it's much simpler (for one example, my automated Nextcloud installation for FreeNAS took over 1000 lines of Apache config files--with Caddy, it…

OCSP stapling verification timeout revisited

Help

danb35 February 7, 2021, 2:21am 6

See:

Topic		Replies	Views
SOLVED: Apache's "built-in" OCSP stapling problem Help	9	3638	May 9, 2021
Having Certbot set up OCSP stapling "opportunistically" for servers Help	4	2609	August 26, 2024
Bad response from OCSP server Issuance Tech	3	4054	April 9, 2019
OCSP ERROR: Request failed with OCSP status: 6 [http://ocsp.int-x3.letsencrypt.org/] Help	7	9027	January 19, 2017
Stapling error message from Apache Help	6	2015	October 19, 2022

OCSP stapling verification timeout revisited

Related topics